Vulnerability only listed as important, not critical, by vendor, but could have huge impact
ALISO VIEJO, Calif. - PennZone -- Verismic, a global leader in cloud-based IT management and security technology, has released its latest Patch Tuesday assessment. The October 2019 Patch Tuesday from Microsoft only includes 59 updates, much less than last month's release of 80 updates. However, this doesn't mean IT departments should be complacent, here are still nine updates listed as critical and 49 listed as important.
CVE-2019-1367, originally released as an out of band security update last month, has been re-released and is actively being weaponized. Following several misguided attempts to re-assure customers, Microsoft released it to WSUS on October 7th and have released it again on the 8th. They also noted the updated patch addresses some 'quality issues' in the first versions. Customers of Cloud Management Suite had all versions available to them, including the uninstalls.
More on The PennZone
Robert Brown, Director of Services at Verismic noted, "Our customers can be confident that when they use Cloud Management Suite, our expert onboarding team helps implement a successful patching strategy tailored to the customers environment, including the ability to roll back problematic updates."
CVE-2019-1311 is only marked as Important, but we believe this could have a huge impact if not addressed. It carries a CVSS score of 7.8 and, if exposed, could allow a sophisticated attack using the same credentials as the victim. What makes this ultra-important for IT departments, is that in order to exploit the vulnerability, an attacker would only have to convince a user to open a specially crafted .WIM file. If you are concerned about moving to newer versions of Windows 10 and being vulnerable to the same attack, we recommend this update be prioritized.
Read the full October Patch Tuesday assessment here: https://www.cloudmanagementsuite.com/october-patch-tuesday-2019
More on The PennZone
About Verismic Software, Inc.
Verismic Software Inc. is a global industry leader providing cloud-based IT management and security technology focused on enabling greater efficiency, cost-savings and security control for users, all while engaging in endpoint management. Headquartered in Aliso Viejo, Calif., Verismic is a growing and dynamic organization with offices in four countries and 12 partners in nine countries. Verismic works with companies ranging from 50 to 10,000 endpoints delivering a variety of solutions. Verismic's software portfolio includes the first-of-its-kind agentless, Cloud Management Suite (CMS); For more information, visit www.cloudmanagementsuite.com.
CVE-2019-1367, originally released as an out of band security update last month, has been re-released and is actively being weaponized. Following several misguided attempts to re-assure customers, Microsoft released it to WSUS on October 7th and have released it again on the 8th. They also noted the updated patch addresses some 'quality issues' in the first versions. Customers of Cloud Management Suite had all versions available to them, including the uninstalls.
More on The PennZone
- Automation Devices Adds New, Versatile Fork Rhino to Product Line
- Pennsylvania: Wolf Administration Awards $1.5 Million in Grants for Opioid Use Disorder Criminal Justice Diversion Programs
- SAM9000 AI Project Management App adds Document and Email Management, now available in full release
- Teresa Osborne Named Manager of Advocacy and Outreach for AARP Pennsylvania
- Dental Implants in Reading are Replacing Missing Teeth
Robert Brown, Director of Services at Verismic noted, "Our customers can be confident that when they use Cloud Management Suite, our expert onboarding team helps implement a successful patching strategy tailored to the customers environment, including the ability to roll back problematic updates."
CVE-2019-1311 is only marked as Important, but we believe this could have a huge impact if not addressed. It carries a CVSS score of 7.8 and, if exposed, could allow a sophisticated attack using the same credentials as the victim. What makes this ultra-important for IT departments, is that in order to exploit the vulnerability, an attacker would only have to convince a user to open a specially crafted .WIM file. If you are concerned about moving to newer versions of Windows 10 and being vulnerable to the same attack, we recommend this update be prioritized.
Read the full October Patch Tuesday assessment here: https://www.cloudmanagementsuite.com/october-patch-tuesday-2019
More on The PennZone
- Symplast Welcomes Former AtlasKPI Executive Randy Torban as Head of New Practice Analysis Department
- Global Sales Expert and Former Xerox Executive Joins CEO Coaching International
- First Connecticut Office Building Tokenized
- LaTribuna Christian Publishing Reports on The Good News of John 3:16
- Telliant Systems Expands Digital Software Technology Outreach with Sponsorship at The TAG Summit in Atlanta
About Verismic Software, Inc.
Verismic Software Inc. is a global industry leader providing cloud-based IT management and security technology focused on enabling greater efficiency, cost-savings and security control for users, all while engaging in endpoint management. Headquartered in Aliso Viejo, Calif., Verismic is a growing and dynamic organization with offices in four countries and 12 partners in nine countries. Verismic works with companies ranging from 50 to 10,000 endpoints delivering a variety of solutions. Verismic's software portfolio includes the first-of-its-kind agentless, Cloud Management Suite (CMS); For more information, visit www.cloudmanagementsuite.com.
Source: Verismic Software
Filed Under: Business, Technology
0 Comments
Latest on The PennZone
- A.R. Rahman Begins Recording "Hands Around the World" song to fundraise against climate change, in Los Angeles
- Soloff & Zervanos, P.C. is Helping Victims of Jehovah's Witness Sexual Abuse
- Califia and the Timeless Sentries Episode II "Legacies" Streaming Now on YouTube!
- Enabling next-gen architectures: TE Connectivity showcases data and power connectivity solutions at OCP Summit
- Pennsylvania: Gov. Wolf Announces Multi-Generational Manufacturing Apprenticeship Opportunities in Susquehanna County
- Pennsylvania: Gov. Wolf Announces New Funding to Repair 10 Hazardous Dams
- Virtual Reality Applications in Real Estate - March 12
- Philadelphians Donate Time and Skills During Martin Luther King Jr.'s Day of Service
- Tullish & Clancy Real Estate Rebrands
- Evolve IP Integrates Microsoft Teams with Cisco Voice Communications; Enhances Microsoft Teams Phone Systems and Ensures Business Continuity
- A Reliable Digital Marketing Agency for Website Developments and Social Media Management
- Regency DRT acquires Jacksonville Florida restoration company
- The Felix Organization Announces Camp Felix Pride at The Fresh Air Fund
- For Third Year in a Row, Yard Management Solutions Named 2020 MHI Innovation Award Finalist
- iMediate Inc Publishes Video Guide to Child Custody for Fathers and Mothers
- Beyond Spots & Dots Earns First PRSA Pittsburgh Renaissance Award
- Lehigh Valley Orthodontist Straightening Smiles with High-Quality, Low-Cost Braces
- INVESTOR ALERT: Law Offices of Howard G. Smith Continues Investigation of Bed Bath & Beyond Inc. (BBBY) on Behalf of Investors
- Castle Dental Offering the Lehigh Valley Dental Implants & Other Cosmetic Dentistry Services
- Airlite Plastics Co. Announces the Unification of its Arctic Fox Brand Into KODIAKOOLER®